SQL Injection in GitHub repository ampache/ampache prior to 5.5.7,develop.
References
Link | Resource |
---|---|
https://github.com/ampache/ampache/commit/c456e66ef6fd8d11390181a40c66910ae01fbf4c | Patch |
https://huntr.dev/bounties/2493f350-271b-4c38-9e1d-c8fa189c5ce1 | Exploit Issue Tracking Patch Third Party Advisory |
Configurations
History
16 Feb 2023, 18:09
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:ampache:ampache:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
References | (MISC) https://github.com/ampache/ampache/commit/c456e66ef6fd8d11390181a40c66910ae01fbf4c - Patch | |
References | (CONFIRM) https://huntr.dev/bounties/2493f350-271b-4c38-9e1d-c8fa189c5ce1 - Exploit, Issue Tracking, Patch, Third Party Advisory | |
First Time |
Ampache
Ampache ampache |
10 Feb 2023, 02:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-02-10 01:15
Updated : 2023-12-10 14:48
NVD link : CVE-2023-0771
Mitre link : CVE-2023-0771
CVE.ORG link : CVE-2023-0771
JSON object : View
Products Affected
ampache
- ampache
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')